Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225471 5 警告 デジタル - Pro-face WinGP PC ランタイムおよび Pro-Server EX におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3794 2013-06-26 14:28 2012-06-11 Show GitHub Exploit DB Packet Storm
225472 5 警告 デジタル - Pro-face WinGP PC ランタイムおよび Pro-Server EX における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3793 2013-06-26 14:26 2012-06-11 Show GitHub Exploit DB Packet Storm
225473 5 警告 デジタル - Pro-face WinGP PC ランタイムおよび Pro-Server EX におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3792 2013-06-26 14:24 2012-06-11 Show GitHub Exploit DB Packet Storm
225474 6.9 警告 シーメンス - Siemens Simatic WinCC および Simatic PCS 7 の SCADA システムにおける権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-2772 2013-06-26 14:21 2010-07-22 Show GitHub Exploit DB Packet Storm
225475 6.8 警告 日立 - 日立の Windows 版 COBOL GUIオプションの開発環境における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-4274 2013-06-26 14:16 2012-04-27 Show GitHub Exploit DB Packet Storm
225476 4.3 警告 Nathan Haug - Drupal 用 Webform モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2129 2013-06-26 14:03 2013-05-29 Show GitHub Exploit DB Packet Storm
225477 4.3 警告 Yoran Brault - Drupal 用 Filebrowser モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2036 2013-06-26 14:00 2013-04-30 Show GitHub Exploit DB Packet Storm
225478 4.3 警告 Alexey Sukhotin - Drupal 用 elFinder file manager モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1972 2013-06-26 14:00 2013-04-16 Show GitHub Exploit DB Packet Storm
225479 4.3 警告 drunomics - Drupal 用 Rules モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1906 2013-06-26 13:57 2013-03-27 Show GitHub Exploit DB Packet Storm
225480 4.3 警告 Opera Software ASA - Opera におけるアドレスバー詐称の脆弱性 CWE-Other
その他 		CVE-2012-4010 2013-06-26 13:47 2012-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197081 4.8 MEDIUM
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to a stored cross-site scripting vulnerability in the admin console. Successful exploitation could … CWE-79
Cross-site Scripting 		CVE-2021-21023 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197082 5.3 MEDIUM
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an insecure direct object reference (IDOR) in the product module. Successful exploitation could … - CVE-2021-21022 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197083 8.8 HIGH
Network 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a Use After Free vulnerability. An unauthenticated atta… - CVE-2021-21021 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197084 5.3 MEDIUM
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an access control bypass vulnerability in the Login as Customer module. Successful exploitation … NVD-CWE-Other
CVE-2021-21020 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197085 9.1 CRITICAL
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to XML injection in the Widgets module. Successful exploitation could lead to arbitrary code execut… - CVE-2021-21019 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197086 9.1 CRITICAL
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the scheduled operation module. Successful exploitation could lead to a… - CVE-2021-21018 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197087 8.8 HIGH
Network 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a heap-based buffer overflow vulnerability. An unauthen… CWE-787
 Out-of-bounds Write 		CVE-2021-21017 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197088 9.1 CRITICAL
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the WebAPI. Successful exploitation could lead to remote code execution… CWE-78
OS Command  		CVE-2021-21016 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197089 8.0 HIGH
Network 		magento magento Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an OS command injection via the customer attribute save controller. Successful exploitation coul… - CVE-2021-21015 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm
197090 9.8 CRITICAL
Network 		lucee lucee_server Lucee Server is a dynamic, Java based (JSR-223), tag and scripting language used for rapid web application development. In Lucee Admin before versions 5.3.7.47, 5.3.6.68 or 5.3.5.96 there is an unaut… - CVE-2021-21307 2024-11-21 14:47 2021-02-12 Show GitHub Exploit DB Packet Storm